آپدیت سهشنبه های ماه June 2024 مایکروسافت که شامل بهروزرسانیهای امنیتی برای 51 نقص، هجده نقص اجرای کد از راه دور و یک آسیبپذیری روز صفر است که به طور عمومی فاش شده، منتشر شد.
در این آپدیت ۱۸ نقص RCE برطرف شده اما تنها یک آسیبپذیری حیاتی در نظر گرفته شده است(یک آسیبپذیری اجرای کد از راه دور در MSMQ).
تعداد آسیب پذیری های رفع شده در در هر دسته به شرح زیر است:
- 25 Elevation of Privilege Vulnerabilities
- 18 Remote Code Execution Vulnerabilities
- 3 Information Disclosure Vulnerabilities
- 5 Denial of Service Vulnerabilities
آسیب پذیری Zero-day افشا شده
در آپدیت این ماه مایکروسافت یک آسیب پذیری zero-day که به صورت عمومی افشا شده را نیز رفع نموده و اعلام کرده است که در حال حاضر بهره برداری فعالی از آن صورت نگرفته است.
این آسیب پذیری در پروتکل DNS قبلا در حملات Keytrap شناسایی شده بود.
CVE-2023-50868 – MITRE: CVE-2023-50868 NSEC3 closest encloser proof can exhaust CPU
آسیب پذیری مذکور مربوط به یک حفره امنیتی در اعتبارسنجی DNSSEC است که در آن یک مهاجم میتواند از پروتکلهای استاندارد DNSSEC در نظر گرفته شده برای یکپارچگی DNS با استفاده از منابع بیش از حد روی یک resolver، سوء استفاده کرده و منجر به DoS برای کاربران قانونی شود.
این نقص قبلاً در ماه فوریه فاش شده بود و در بسیاری از پیادهسازیهای DNS از جمله BIND، PowerDNS، Unbound، Knot Resolver و Dnsmasq وصله شده بود.
آسیبپذیریهای قابل توجه دیگری که در این ماه برطرف شدهاند شامل چندین نقص اجرای کد از راه دور مایکروسافت آفیس، از جمله RCEهای Microsoft Outlook است که میتوانند از صفحه پیشنمایش نیز مورد سوء استفاده قرار گیرند.
مایکروسافت همچنین هفت آسیب پذیری افزایش امتیازات هسته ویندوز را برطرف کرد که به مهاجم محلی امکان دستیابی به امتیازات SYSTEM را میدهد.
آپدیت های سایر شرکتها:
Apple fixed 21 security flaws in the visionOS 1.2 release.
ARM fixes an actively exploited bug in Mali GPU kernel drivers.
Cisco released security updates for its Cisco Finesse and Webex.
Cox fixed an API auth bypass bug that impacted million of modems.
F5 releases security updates for two high-severity BIG-IP Next Central Manager API flaws.
PHP fixed a critical RCE flaw that is now actively exploited in ransomware attacks.
TikTok fixes an exploited zero-day, zero-click flaw in their direct messages feature.
VMware fixes three zero-day bugs exploited at Pwn2Own 2024.
Zyxel releases an emergency RCE patch for end-of-life NAS devices
لیست کامل به روز رسانی های ماه June 2024 مایکروسافت
| Tag | CVE ID | CVE Title | Severity |
| Azure Data Science Virtual Machines | CVE-2024-37325 | Azure Science Virtual Machine (DSVM) Elevation of Privilege Vulnerability | Important |
| Azure File Sync | CVE-2024-35253 | Microsoft Azure File Sync Elevation of Privilege Vulnerability | Important |
| Azure Monitor | CVE-2024-35254 | Azure Monitor Agent Elevation of Privilege Vulnerability | Important |
| Azure SDK | CVE-2024-35255 | Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability | Important |
| Azure Storage Library | CVE-2024-35252 | Azure Storage Movement Client Library Denial of Service Vulnerability | Important |
| Dynamics Business Central | CVE-2024-35248 | Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability | Important |
| Dynamics Business Central | CVE-2024-35249 | Microsoft Dynamics 365 Business Central Remote Code Execution Vulnerability | Important |
| Microsoft Dynamics | CVE-2024-35263 | Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability | Important |
| Microsoft Edge (Chromium-based) | CVE-2024-5498 | Chromium: CVE-2024-5498 Use after free in Presentation API | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2024-5493 | Chromium: CVE-2024-5493 Heap buffer overflow in WebRTC | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2024-5497 | Chromium: CVE-2024-5497 Out of bounds memory access in Keyboard Inputs | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2024-5495 | Chromium: CVE-2024-5495 Use after free in Dawn | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2024-5499 | Chromium: CVE-2024-5499 Out of bounds write in Streams API | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2024-5494 | Chromium: CVE-2024-5494 Use after free in Dawn | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2024-5496 | Chromium: CVE-2024-5496 Use after free in Media Session | Unknown |
| Microsoft Office | CVE-2024-30101 | Microsoft Office Remote Code Execution Vulnerability | Important |
| Microsoft Office | CVE-2024-30104 | Microsoft Office Remote Code Execution Vulnerability | Important |
| Microsoft Office Outlook | CVE-2024-30103 | Microsoft Outlook Remote Code Execution Vulnerability | Important |
| Microsoft Office SharePoint | CVE-2024-30100 | Microsoft SharePoint Server Remote Code Execution Vulnerability | Important |
| Microsoft Office Word | CVE-2024-30102 | Microsoft Office Remote Code Execution Vulnerability | Important |
| Microsoft Streaming Service | CVE-2024-30090 | Microsoft Streaming Service Elevation of Privilege Vulnerability | Important |
| Microsoft Streaming Service | CVE-2024-30089 | Microsoft Streaming Service Elevation of Privilege Vulnerability | Important |
| Microsoft WDAC OLE DB provider for SQL | CVE-2024-30077 | Windows OLE Remote Code Execution Vulnerability | Important |
| Microsoft Windows | CVE-2023-50868 | MITRE: CVE-2023-50868 NSEC3 closest encloser proof can exhaust CPU | Important |
| Microsoft Windows Speech | CVE-2024-30097 | Microsoft Speech Application Programming Interface (SAPI) Remote Code Execution Vulnerability | Important |
| Visual Studio | CVE-2024-30052 | Visual Studio Remote Code Execution Vulnerability | Important |
| Visual Studio | CVE-2024-29060 | Visual Studio Elevation of Privilege Vulnerability | Important |
| Visual Studio | CVE-2024-29187 | GitHub: CVE-2024-29187 WiX Burn-based bundles are vulnerable to binary hijack when run as SYSTEM | Important |
| Windows Cloud Files Mini Filter Driver | CVE-2024-30085 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability | Important |
| Windows Container Manager Service | CVE-2024-30076 | Windows Container Manager Service Elevation of Privilege Vulnerability | Important |
| Windows Cryptographic Services | CVE-2024-30096 | Windows Cryptographic Services Information Disclosure Vulnerability | Important |
| Windows DHCP Server | CVE-2024-30070 | DHCP Server Service Denial of Service Vulnerability | Important |
| Windows Distributed File System (DFS) | CVE-2024-30063 | Windows Distributed File System (DFS) Remote Code Execution Vulnerability | Important |
| Windows Event Logging Service | CVE-2024-30072 | Microsoft Event Trace Log File Parsing Remote Code Execution Vulnerability | Important |
| Windows Kernel | CVE-2024-30068 | Windows Kernel Elevation of Privilege Vulnerability | Important |
| Windows Kernel | CVE-2024-30064 | Windows Kernel Elevation of Privilege Vulnerability | Important |
| Windows Kernel-Mode Drivers | CVE-2024-30084 | Windows Kernel-Mode Driver Elevation of Privilege Vulnerability | Important |
| Windows Kernel-Mode Drivers | CVE-2024-35250 | Windows Kernel-Mode Driver Elevation of Privilege Vulnerability | Important |
| Windows Link Layer Topology Discovery Protocol | CVE-2024-30075 | Windows Link Layer Topology Discovery Protocol Remote Code Execution Vulnerability | Important |
| Windows Link Layer Topology Discovery Protocol | CVE-2024-30074 | Windows Link Layer Topology Discovery Protocol Remote Code Execution Vulnerability | Important |
| Windows NT OS Kernel | CVE-2024-30099 | Windows Kernel Elevation of Privilege Vulnerability | Important |
| Windows NT OS Kernel | CVE-2024-30088 | Windows Kernel Elevation of Privilege Vulnerability | Important |
| Windows Perception Service | CVE-2024-35265 | Windows Perception Service Elevation of Privilege Vulnerability | Important |
| Windows Remote Access Connection Manager | CVE-2024-30069 | Windows Remote Access Connection Manager Information Disclosure Vulnerability | Important |
| Windows Routing and Remote Access Service (RRAS) | CVE-2024-30095 | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability | Important |
| Windows Routing and Remote Access Service (RRAS) | CVE-2024-30094 | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability | Important |
| Windows Server Service | CVE-2024-30062 | Windows Standards-Based Storage Management Service Remote Code Execution Vulnerability | Important |
| Windows Server Service | CVE-2024-30080 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | Critical |
| Windows Standards-Based Storage Management Service | CVE-2024-30083 | Windows Standards-Based Storage Management Service Denial of Service Vulnerability | Important |
| Windows Storage | CVE-2024-30093 | Windows Storage Elevation of Privilege Vulnerability | Important |
| Windows Themes | CVE-2024-30065 | Windows Themes Denial of Service Vulnerability | Important |
| Windows Wi-Fi Driver | CVE-2024-30078 | Windows Wi-Fi Driver Remote Code Execution Vulnerability | Important |
| Windows Win32 Kernel Subsystem | CVE-2024-30086 | Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability | Important |
| Windows Win32K – GRFX | CVE-2024-30087 | Win32k Elevation of Privilege Vulnerability | Important |
| Windows Win32K – GRFX | CVE-2024-30091 | Win32k Elevation of Privilege Vulnerability | Important |
| Windows Win32K – GRFX | CVE-2024-30082 | Win32k Elevation of Privilege Vulnerability | Important |
| Winlogon | CVE-2024-30067 | Winlogon Elevation of Privilege Vulnerability | Important |
| Winlogon | CVE-2024-30066 | Winlogon Elevation of Privilege Vulnerability | Important |
